[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: setuid/setgid binaries contained in the Debian repository.

On Mon, Aug 11, 2003 at 09:21:11PM +0200, Emile van Bergen wrote:

> About your example, it would indeed be nice if ports where exposed in
> the filesystem, like /dev/ip/tcp/<port>, to each of which you could
> assign an owner and a group. That way, the admin can control which uid
> and gid can bind to what.

There is a kernel patch which does this.  Someone pointed it out on
#debian-devel the other day.

> That installing new user software requires root is the fault of the system
> integrator, not of unix' design. In the case of Debian, it would be lovely
> if the user would have a tool to configure and build souce packages so
> that they could be installed in ~/bin, ~/etc, ~/lib.

It would be nice indeed; it also turns out to be horrifically complex when
you consider dependency relationships, unless you force the user to install
another copy of all system software in their home dir as well.

 - mdz

Reply to: